$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft File: pfsx1NUSX3yarlADNaSA_HeQjxU.mft (raw, json) Hash identifier: 1yItI1tn1tJUz0+E+e8o0GI/54Zkuk8IJ62qghqLiaQ= Subject key identifier: DC:18:A7:83:17:6B:30:DF:1A:33:8A:E4:0B:14:01:88:B6:C2:0A:7F Authority key identifier: A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 Certificate issuer: /CN=A91A4A13/serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Certificate serial: 01B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft Manifest number: 01AD Signing time: Fri 13 Jun 2025 02:14:44 +0000 Manifest this update: Fri 13 Jun 2025 02:14:43 +0000 Manifest next update: Fri 20 Jun 2025 02:14:43 +0000 Files and hashes: 1: pfsx1NUSX3yarlADNaSA_HeQjxU.crl (hash: XHd/gDwU9VWH38FaEnVpniYLpcjYGnarfUjerpOGXjo=) 2: A8D327E4BBC711ED8DF23C40C4F9AE02.roa (hash: jtm4IGu6ehkk/GhdKICbbynbKgcYNoX0OJfsqwSmMDI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:14:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 433 (0x1b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4A13, serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Validity Not Before: Jun 13 02:14:43 2025 GMT Not After : Jun 20 02:14:43 2025 GMT Subject: CN=684b8993-66b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a2:46:92:7b:9a:ed:46:32:9c:88:ac:c0:53: c6:cb:a7:9d:16:08:c3:3f:43:59:cb:84:c5:7b:16: 60:a2:0d:90:92:c6:2e:3a:3c:5a:2a:f9:b9:1e:4b: 72:7d:e4:4f:a2:d1:9f:b3:45:95:2c:cb:b4:e1:5e: 59:0e:38:3a:89:4c:1e:79:bd:c2:4b:40:4e:83:fc: 3d:58:c2:5b:d9:07:33:39:36:56:4d:c2:50:38:ee: 1c:48:45:2d:a0:2a:9a:f1:36:da:72:6d:79:80:f6: 1f:48:65:bd:5c:f0:90:26:20:4b:53:e3:d7:a5:10: c5:a7:5e:d6:6d:ff:09:76:c6:1a:8d:c5:16:0e:3f: a7:e5:2b:7f:01:89:b1:fd:f1:cf:f0:3d:38:70:f5: 61:1a:ac:db:78:9a:d0:ef:c8:c7:57:e9:d1:5f:1a: ec:67:d3:e1:a5:a5:0a:e8:be:2a:4c:b0:23:a9:76: 07:b1:bb:82:f4:b0:c5:95:11:c1:e7:62:ea:cc:74: c9:98:71:f5:cf:79:9e:aa:f9:43:31:f5:bf:b4:5b: c3:bc:1c:a8:99:57:ab:bd:75:8d:ab:ad:ba:52:41: 7a:26:1d:fb:a6:29:65:91:86:ff:40:cb:1f:52:0b: c5:bd:88:00:61:49:53:4d:31:a1:f9:42:ae:d4:76: 49:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:18:A7:83:17:6B:30:DF:1A:33:8A:E4:0B:14:01:88:B6:C2:0A:7F X509v3 Authority Key Identifier: keyid:A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:60:da:52:32:51:56:7a:b7:8d:c7:85:d2:1e:6d:8a:e2:ea: bf:78:fb:a3:ab:d4:b0:ac:0a:4e:ca:70:36:6a:5e:cc:1d:3d: dd:b1:bd:e3:b0:00:69:41:3e:c2:ad:6a:c7:27:80:a6:3a:41: 62:46:3c:89:64:9f:3e:a6:48:c4:54:c5:ce:d5:8d:59:e6:68: 86:83:4a:b6:3b:44:28:c3:04:3d:a4:84:49:6b:18:44:22:e7: b7:a1:b7:ff:6f:76:af:fa:0a:45:a8:21:13:f1:91:7c:39:a3: 89:b8:5e:82:79:87:7c:50:24:0e:43:0e:58:03:b5:df:a7:f0: 5f:2a:9b:ab:34:eb:9f:78:79:46:15:28:3f:05:9d:3c:ac:f8: 25:ae:d8:b5:96:34:d2:9a:9a:52:38:8f:c6:57:12:b2:7a:19: f1:2f:ee:36:2d:75:12:60:3f:6b:c7:0c:cd:38:41:48:c2:28: a7:6d:91:6f:49:95:d9:e0:2d:6e:e8:70:63:9d:d5:9e:0d:60: 60:6e:e7:db:a1:95:5e:b5:f8:3f:09:6b:a5:05:c9:9f:84:3c: 34:bd:4f:be:41:98:cc:1d:1c:82:55:5f:0c:bc:ce:78:cf:3a: 33:1d:d4:9c:62:4b:c3:fc:11:e4:16:44:6f:af:29:78:73:ac: 6b:e8:9f:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRBMTMxMTAvBgNVBAUTKEE1RkIzMUQ0RDUxMjVGN0M5QUFFNTAwMzM1QTQ4MEZD Nzc5MDhGMTUwHhcNMjUwNjEzMDIxNDQzWhcNMjUwNjIwMDIxNDQzWjAYMRYwFAYD VQQDEw02ODRiODk5My02NmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06JGknua7UYynIiswFPGy6edFgjDP0NZy4TFexZgog2QksYuOjxaKvm5Hkty feRPotGfs0WVLMu04V5ZDjg6iUweeb3CS0BOg/w9WMJb2QczOTZWTcJQOO4cSEUt oCqa8Tbacm15gPYfSGW9XPCQJiBLU+PXpRDFp17Wbf8JdsYajcUWDj+n5St/AYmx /fHP8D04cPVhGqzbeJrQ78jHV+nRXxrsZ9PhpaUK6L4qTLAjqXYHsbuC9LDFlRHB 52LqzHTJmHH1z3meqvlDMfW/tFvDvByomVervXWNq626UkF6Jh37pillkYb/QMsf UgvFvYgAYUlTTTGh+UKu1HZJhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNwYp4MX azDfGjOK5AsUAYi2wgp/MB8GA1UdIwQYMBaAFKX7MdTVEl98mq5QAzWkgPx3kI8V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEExMy9CQjZDOUI1NEI5 ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gzeWFybEFETmFTQV9IZVFq eFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Bmc3gxTlVTWDN5YXJsQUROYVNBX0hlUWp4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEExMy9CQjZDOUI1NEI5ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gz eWFybEFETmFTQV9IZVFqeFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARYNpSMlFWereNx4XSHm2K4uq/ePujq9SwrApOynA2al7MHT3dsb3j sABpQT7CrWrHJ4CmOkFiRjyJZJ8+pkjEVMXO1Y1Z5miGg0q2O0QowwQ9pIRJaxhE Iue3obf/b3av+gpFqCET8ZF8OaOJuF6CeYd8UCQOQw5YA7Xfp/BfKpurNOufeHlG FSg/BZ08rPglrti1ljTSmppSOI/GVxKyehnxL+42LXUSYD9rxwzNOEFIwiinbZFv SZXZ4C1u6HBjndWeDWBgbufboZVetfg/CWulBcmfhDw0vU++QZjMHRyCVV8MvM54 zzozHdScYkvD/BHkFkRvryl4c6xr6J97 -----END CERTIFICATE-----Generated at Sat Jun 14 19:34:38 2025 by rpki-client